AVG-1948 log
| Package | dmg2img |
| Status | Unknown |
| Severity | Medium |
| Type | multiple issues |
| Affected | 1.6.7-4 |
| Fixed | Unknown |
| Current | Removed |
| Ticket | None |
| Created | Wed May 12 07:56:56 2021 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2021-32614 | Medium | No | Information disclosure | A security issue has been found in dmg2img. fill_mishblk() does not check the length of the read buffer, and copies 0xCC bytes from it. The length of the... |
| CVE-2021-3548 | Medium | No | Arbitrary code execution | dmg2img does not validate the size of a buffer during memcpy() inside the main() function. This possibly leads to a crash of the dmg2img command with an... |